This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/0c8b0f-5384-4580-89c2-a637650c74ae/1/g4JFmXRkf3b7M-ZJLQjSsXsM4U8.roa File: g4JFmXRkf3b7M-ZJLQjSsXsM4U8.roa (raw, json) Hash identifier: sbf3UShWaRRxypL6ZmIBhA+ry9qv9zUSU1s+tGR/C5c= Subject key identifier: 83:82:45:99:74:64:7F:76:FB:33:E6:49:2D:08:D2:B1:7B:0C:E1:4F Certificate issuer: /CN=570a181aa090cb970605a25a7a57d653547f2324 Certificate serial: 019B7A5ABFF0ABB86CA3041728E3369510F4 Authority key identifier: 57:0A:18:1A:A0:90:CB:97:06:05:A2:5A:7A:57:D6:53:54:7F:23:24 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VwoYGqCQy5cGBaJaelfWU1R_IyQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/0c8b0f-5384-4580-89c2-a637650c74ae/1/g4JFmXRkf3b7M-ZJLQjSsXsM4U8.roa Signing time: Thu 01 Jan 2026 16:18:46 +0000 ROA not before: Thu 01 Jan 2026 16:18:46 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 42976 IP address blocks: 91.194.4.0/23 maxlen: 23 91.216.31.0/24 maxlen: 24 91.220.9.0/24 maxlen: 24 193.104.44.0/24 maxlen: 24 194.5.56.0/22 maxlen: 22 194.165.42.0/24 maxlen: 24 2a0c:c340::/29 maxlen: 29 2a0c:c340::/30 maxlen: 30 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/0c8b0f-5384-4580-89c2-a637650c74ae/1/VwoYGqCQy5cGBaJaelfWU1R_IyQ.crl rsync://rpki.ripe.net/repository/DEFAULT/91/0c8b0f-5384-4580-89c2-a637650c74ae/1/VwoYGqCQy5cGBaJaelfWU1R_IyQ.mft rsync://rpki.ripe.net/repository/DEFAULT/VwoYGqCQy5cGBaJaelfWU1R_IyQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:bf:f0:ab:b8:6c:a3:04:17:28:e3:36:95:10:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=570a181aa090cb970605a25a7a57d653547f2324 Validity Not Before: Jan 1 16:18:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8382459974647f76fb33e6492d08d2b17b0ce14f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:fe:88:21:5b:1c:b7:5f:50:d6:21:a3:2a:06: 32:69:42:f5:14:af:c7:3e:ca:f1:16:93:85:4a:06: 5d:40:11:bb:9b:f7:29:c1:66:e2:4f:f2:71:58:e3: fa:34:40:6d:f2:e5:7e:5e:66:46:3f:71:23:fb:d8: 4f:d7:91:fb:54:08:06:df:d9:e5:51:d5:f7:ba:b3: 2c:72:db:a7:93:bc:eb:33:3a:05:fb:23:60:2c:93: ac:4c:72:5b:3b:06:8d:b2:1e:20:8a:c0:b8:90:b2: eb:39:62:8e:0a:4e:a2:a6:24:8a:13:59:9c:0a:18: 6f:78:76:15:ba:51:ed:dd:d1:6e:7c:ba:6d:10:9b: 55:db:26:ad:99:de:6a:63:64:82:c6:da:c0:66:8c: e0:46:6f:1d:38:e7:94:e2:d6:2a:cc:99:9c:e1:b6: 97:f2:7d:8e:97:3e:22:2b:5e:f6:42:6a:5b:b2:af: 08:02:69:1d:21:78:c3:09:5b:8f:8f:dc:6a:d5:0b: e9:36:2f:59:b1:e6:ad:02:e2:d3:70:b6:30:d9:f7: 55:2d:95:84:b0:55:e0:60:6c:9b:84:4c:5f:c4:d9: 0e:19:71:50:b8:f9:c1:f0:52:b2:98:72:20:b6:d6: 5c:ff:82:5c:50:f3:e6:a9:eb:75:20:a3:22:d0:64: e9:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:82:45:99:74:64:7F:76:FB:33:E6:49:2D:08:D2:B1:7B:0C:E1:4F X509v3 Authority Key Identifier: keyid:57:0A:18:1A:A0:90:CB:97:06:05:A2:5A:7A:57:D6:53:54:7F:23:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VwoYGqCQy5cGBaJaelfWU1R_IyQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0c8b0f-5384-4580-89c2-a637650c74ae/1/g4JFmXRkf3b7M-ZJLQjSsXsM4U8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/91/0c8b0f-5384-4580-89c2-a637650c74ae/1/VwoYGqCQy5cGBaJaelfWU1R_IyQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.194.4.0/23 91.216.31.0/24 91.220.9.0/24 193.104.44.0/24 194.5.56.0/22 194.165.42.0/24 IPv6: 2a0c:c340::/29 Signature Algorithm: sha256WithRSAEncryption 38:26:b0:f7:d6:e7:6c:7b:7c:63:3d:1b:51:27:67:80:48:92: ae:22:54:b3:23:b8:84:f5:9f:a8:89:4f:d3:2f:77:fd:52:09: 2a:05:e9:f3:df:01:56:0a:2c:19:b8:13:17:5b:d6:cf:6c:7d: 5e:ce:41:f9:62:8d:ad:1a:bd:fa:56:53:b2:be:d7:fb:17:ee: 79:a7:ea:f5:b8:d3:92:87:3a:5b:a1:43:59:e5:ae:c1:bb:84: 43:ad:ce:7b:d6:68:42:2f:24:2b:da:c8:d2:38:56:69:5a:f0: 38:97:1c:f0:9b:2c:48:64:04:f3:10:c3:40:bd:94:e7:43:30: 43:f6:9b:bc:0f:79:5f:14:17:d3:01:1b:5a:81:c2:2b:4d:db: ec:95:21:d1:c6:c7:55:5d:59:80:46:2f:23:6b:dd:df:72:7b: 68:3b:45:a8:8a:16:49:14:89:93:16:bc:6a:07:53:b5:9f:e6: a1:b5:45:39:17:c0:6b:0f:3f:3b:6d:f3:16:97:1a:22:86:09: e1:1a:2c:f4:b2:ae:ac:b3:02:1a:eb:de:5f:5c:a9:45:9c:ca: f7:70:57:8b:33:3e:66:ea:62:7c:dc:ca:36:76:49:32:1e:c4: dc:fd:2c:39:ec:d0:6b:0a:45:03:35:4d:eb:d1:a7:8c:2c:d2: c7:3f:a5:54 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgISAZt6Wr/wq7hsowQXKOM2lRD0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU3MGExODFhYTA5MGNiOTcwNjA1YTI1YTdhNTdkNjUzNTQ3 ZjIzMjQwHhcNMjYwMTAxMTYxODQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MzgyNDU5OTc0NjQ3Zjc2ZmIzM2U2NDkyZDA4ZDJiMTdiMGNlMTRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqf6IIVsct19Q1iGjKgYyaUL1FK/H PsrxFpOFSgZdQBG7m/cpwWbiT/JxWOP6NEBt8uV+XmZGP3Ej+9hP15H7VAgG39nl UdX3urMsctunk7zrMzoF+yNgLJOsTHJbOwaNsh4gisC4kLLrOWKOCk6ipiSKE1mc ChhveHYVulHt3dFufLptEJtV2yatmd5qY2SCxtrAZozgRm8dOOeU4tYqzJmc4baX 8n2Olz4iK172Qmpbsq8IAmkdIXjDCVuPj9xq1QvpNi9ZseatAuLTcLYw2fdVLZWE sFXgYGybhExfxNkOGXFQuPnB8FKymHIgttZc/4JcUPPmqet1IKMi0GTpzQIDAQAB o4ICNjCCAjIwHQYDVR0OBBYEFIOCRZl0ZH92+zPmSS0I0rF7DOFPMB8GA1UdIwQY MBaAFFcKGBqgkMuXBgWiWnpX1lNUfyMkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVndvWUdxQ1F5NWNHQmFKYWVsZldVMVJfSXlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS8wYzhiMGYtNTM4NC00NTgwLTg5YzIt YTYzNzY1MGM3NGFlLzEvZzRKRm1YUmtmM2I3TS1aSkxRalNzWHNNNFU4LnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MS8wYzhiMGYtNTM4NC00NTgwLTg5YzItYTYzNzY1MGM3NGFl LzEvVndvWUdxQ1F5NWNHQmFKYWVsZldVMVJfSXlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMEwGCCsGAQUFBwEHAQH/BD0wOzAqBAIAATAkAwQBW8IEAwQA W9gfAwQAW9wJAwQAwWgsAwQCwgU4AwQAwqUqMA0EAgACMAcDBQMqDMNAMA0GCSqG SIb3DQEBCwUAA4IBAQA4JrD31udse3xjPRtRJ2eASJKuIlSzI7iE9Z+oiU/TL3f9 UgkqBenz3wFWCiwZuBMXW9bPbH1ezkH5Yo2tGr36VlOyvtf7F+55p+r1uNOShzpb oUNZ5a7Bu4RDrc571mhCLyQr2sjSOFZpWvA4lxzwmyxIZATzEMNAvZTnQzBD9pu8 D3lfFBfTARtagcIrTdvslSHRxsdVXVmARi8ja93fcntoO0WoihZJFImTFrxqB1O1 n+ahtUU5F8BrDz87bfMWlxoihgnhGiz0sq6sswIa695fXKlFnMr3cFeLMz5m6mJ8 3Mo2dkkyHsTc/Sw57NBrCkUDNU3r0aeMLNLHP6VU -----END CERTIFICATE-----Generated at Mon Feb 9 21:24:12 2026 by rpki-client